Lucene search
K

72 matches found

Cvelist
Cvelist
added 2018/04/27 6:0 p.m.30 views

CVE-2018-10521

In CMS Made Simple CMSMS through 2.2.7, the "file move" operation in the admin dashboard contains an arbitrary file movement vulnerability that can cause DoS, exploitable by an admin user, because config.php can be moved into an incorrect directory...

4AI score0.00893EPSS
Exploits1References1
CVE
CVE
added 2018/04/27 6:0 p.m.56 views

CVE-2018-10521

CMS Made Simple (CMSMS) prior to version 2.2.7 contains an arbitrary file movement vulnerability in the admin dashboard’s “file move” operation. This issue can be exploited by an admin user to cause a denial of service by moving the config.php file into an incorrect directory. Root cause: the fil...

4CVSS4.3AI score0.00893EPSS
Exploits1References1Affected Software1
seebug.org
seebug.org
added 2018/04/25 12:0 a.m.38 views

Seagate Personal Cloud allows moving of arbitrary files

Abstract Seagate Personal Cloud is a consumer-grade Network-Attached Storage device NAS. It was found that the web application used to manage the NAS contains a vulnerability that allows an unauthenticated attacker to move arbitrary files. The move operation is done with root privileges, which...

2.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/07/07 12:0 a.m.20 views

WordPress < 4.5.2 Multiple Vulnerabilities (ImageTragick)

Binary data 9387.prm...

10CVSS7.3AI score0.97485EPSS
Exploits13References8
RedHat Linux
RedHat Linux
added 2016/05/09 6:3 p.m.21 views

ImageMagick: File moving

It was discovered that certain ImageMagick coders and pseudo-protocols did not properly prevent security sensitive operations when processing specially crafted images. A remote attacker could create a specially crafted image that, when processed by an application using ImageMagick or an...

4.3CVSS7.5AI score0.11338EPSS
Exploits5References4
Tenable Nessus
Tenable Nessus
added 2016/05/04 12:0 a.m.252 views

ImageMagick < 7.0.1-1 / 6.x < 6.9.3-10 Multiple Vulnerabilities (ImageTragick)

The remote Windows host has a version of ImageMagick installed that is prior to 7.0.1-1 or 6.x prior to 6.9.3-10. It is, therefore, affected by the following vulnerabilities : - A remote code execution vulnerability, known as ImageTragick, exists due to a failure to properly filter shell characte...

10CVSS7.3AI score0.97485EPSS
Exploits13References8
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

mojoportal - Multiple Vulnerabilities

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ ''' Abysssec Inc Public Advisory Title : mojoportal Multiple Remote Vulnerabilities Affected Version : mojoPortal 2-3-4-3 Discovery :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2006/02/26 12:0 a.m.37 views

NSAG-200-24.02.2006.txt

Advisory: NSAG-¹200-24.02.2006 Research: NSA Group Russian company on Audit of safety & Network security Site of Research: http://www.nsag.ru or http://www.nsag.org Product: ArGoSoft Mail Server Pro 1.8 IMAP Site of manufacturer: www.argosoft.com The status: 19/11/2005 - Publication is postponed...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/02/24 12:0 a.m.37 views

NSA Group Security Advisory NSAG-№200-24.02.2006 Vulnerability ArGoSoft Mail Server Pro IMAP

Advisory: NSAG-№200-24.02.2006 Research: NSA Group Russian company on Audit of safety & Network security Site of Research: http://www.nsag.ru or http://www.nsag.org Product: ArGoSoft Mail Server Pro 1.8 IMAP Site of manufacturer: www.argosoft.com The status: 19/11/2005 - Publication is postponed...

7.3AI score
Exploits0
Cvelist
Cvelist
added 2005/02/20 5:0 a.m.20 views

CVE-2004-1674

viewaction.html in Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 and possibly other versions allows remote attackers to 1 delete arbitrary files via the originalfolder parameter or 2 move arbitrary files via the messageid parameter...

6.9AI score0.01549EPSS
Exploits0References4
CVE
CVE
added 2005/02/20 5:0 a.m.52 views

CVE-2004-1674

The CVE-2004-1674 entry concerns Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 (and possibly other versions). The vulnerability is in viewaction.html, where input parameters originalfolder and messageid enable remote attackers to perform file operations. Specifically, attackers can delete a...

7.5CVSS6.9AI score0.01549EPSS
Exploits0References4Affected Software2
NVD
NVD
added 2004/10/12 4:0 a.m.16 views

CVE-2004-1674

viewaction.html in Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 and possibly other versions allows remote attackers to 1 delete arbitrary files via the originalfolder parameter or 2 move arbitrary files via the messageid parameter...

7.5CVSS6.9AI score0.01549EPSS
Exploits0References4
Rows per page
Query Builder